日志内容已自动填写,请写明“问题描述”及“验证码”后点击“上报日志”。

问题描述: 
验证码:   

发表于 2013/4/6 13:23:53 编号:57416
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-4-6  13:26:01
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v6.0.2900.5512
本机内存:1.75 GB - 可用内存:952.66 MB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
!!QQKav |D:\新建文件夹\qqkav.exe|

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ati2evxx.exe
d:\Program Files\PPStream\PPSProtect.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\2345Safe\2345Safe.exe
C:\Program Files\VxpDisk\RTDXMCLN.exe
C:\WINDOWS\system32\svchost.exe
D:\新建文件夹\qqkav.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\PPStream\PPSKernel.exe
D:\Program Files\Tencent\QQ\QQProtect\Bin\QQProtect.exe
C:\WINDOWS\System32\alg.exe
D:\Program Files\Tencent\QQ\bin\QQ.exe
d:\Program Files\Tencent\QQ\Bin\TXPlatform.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\SogouInput\6.2.0.7197\PinyinUp.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\PreUpdater.20130403.exe
D:\Program Files\Tencent\QQ\bin\QQExternal.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

未知IE加载项:
{C18CB140-0BBB-11D4-8FE8-0088CC102438}
{C18CB140-0BBB-11D4-8FE8-0088CC102438}
{C18CB140-0BBB-11D4-8FE8-0088CC102439}
{C18CB140-0BBB-11D4-8FE8-0088CC102439}
未知BHO插件:
{D960DB2C-469C-453E-B866-DE5E24F3A28A}
{D960DB2C-469C-453E-B866-DE5E24F3A28A}
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
2345首页卫士|2345Safe|"C:\Program Files\2345Safe\2345Safe.exe"|
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
Ati HotKey Poller |Ati HotKey Poller |C:\WINDOWS\system32\Ati2evxx.exe|
NetMeeting Remote Desktop Sharing|mnmsrvc |C:\WINDOWS\system32\mnmsrvc.exe|
锐起无盘XP域登录服务|RTDXMCLN|C:\Program Files\VxpDisk\RTDXMCLN.exe|


发表于 2013/4/6 13:23:36 编号:57415
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-4-6  13:25:46
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v6.0.2900.5512
本机内存:1.75 GB - 可用内存:954.92 MB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
!!QQKav |D:\新建文件夹\qqkav.exe|

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ati2evxx.exe
d:\Program Files\PPStream\PPSProtect.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\2345Safe\2345Safe.exe
C:\Program Files\VxpDisk\RTDXMCLN.exe
C:\WINDOWS\system32\svchost.exe
D:\新建文件夹\qqkav.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\PPStream\PPSKernel.exe
D:\Program Files\Tencent\QQ\QQProtect\Bin\QQProtect.exe
C:\WINDOWS\System32\alg.exe
D:\Program Files\Tencent\QQ\bin\QQ.exe
d:\Program Files\Tencent\QQ\Bin\TXPlatform.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\SogouInput\6.2.0.7197\PinyinUp.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\PreUpdater.20130403.exe
D:\Program Files\Tencent\QQ\bin\QQExternal.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\Program Files\SogouExplorer\SogouExplorer.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

未知IE加载项:
{C18CB140-0BBB-11D4-8FE8-0088CC102438}
{C18CB140-0BBB-11D4-8FE8-0088CC102438}
{C18CB140-0BBB-11D4-8FE8-0088CC102439}
{C18CB140-0BBB-11D4-8FE8-0088CC102439}
未知BHO插件:
{D960DB2C-469C-453E-B866-DE5E24F3A28A}
{D960DB2C-469C-453E-B866-DE5E24F3A28A}
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
2345首页卫士|2345Safe|"C:\Program Files\2345Safe\2345Safe.exe"|
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
Ati HotKey Poller |Ati HotKey Poller |C:\WINDOWS\system32\Ati2evxx.exe|
NetMeeting Remote Desktop Sharing|mnmsrvc |C:\WINDOWS\system32\mnmsrvc.exe|
锐起无盘XP域登录服务|RTDXMCLN|C:\Program Files\VxpDisk\RTDXMCLN.exe|


发表于 2013/4/6 12:58:56 编号:57414
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-4-6  13:00:12
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v8.0.6001.18702
本机内存:1.75 GB - 可用内存:1.00 GB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
360Safetray |"D:\Program Files\360\360Safe\safemon\360Tray.exe" /start|
RTHDCPL |RTHDCPL.EXE |

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\360\360Safe\deepscan\ZhuDongFangYu.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HP1005MC.EXE
D:\Program Files\360\360Safe\safemon\360tray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AutoCAD 2007\acad.exe
C:\Program Files\Common Files\Autodesk Shared\WSCommCntr1.exe
D:\Program Files\360\360Safe\netmon\360netman.exe
D:\Documents and Settings\Administrator\Local Settings\Application Data\TheWorld\Chrome\Application\twchrome.exe
D:\Documents and Settings\Administrator\Local Settings\Application Data\TheWorld\Chrome\Application\twchrome.exe
D:\Documents and Settings\Administrator\Local Settings\Application Data\TheWorld\Chrome\Application\twchrome.exe
C:\WINDOWS\system32\svchost.exe
E:\TDDOWNLOAD\qqkav_newhua\qqkav_newhua.exe

未知IE加载项:
{802F530B-A8F6-4631-AE49-6BACAAC6373E}
|XunleiBHO Class|C:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.9.1.4304.dll
{92780B25-18CC-41C8-B9BE-3C9C571A8263}
{92780B25-18CC-41C8-B9BE-3C9C571A8263}
{EAAED308-7322-4B9B-965E-171933ADD473}
|SSOForPTLogin2 Class|C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.94\Bin\npSSOAxCtrlForPTLogin.dll
{F587310D-5306-494D-87E2-88334B46E781}
|Storm AxPlayer Class|E:\Program Files\Baofeng\StormPlayer\webplayer\PlayerShell.dll
未知BHO插件:
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
Ati HotKey Poller |Ati HotKey Poller |C:\WINDOWS\system32\Ati2evxx.exe|
Autodesk Licensing Service|Autodesk Licensing Service|"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"|
FLEXnet Licensing Service|FLEXnet Licensing Service|"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"|
主动防御|ZhuDongFangYu |"D:\Program Files\360\360Safe\deepscan\zhudongfangyu.exe"|


发表于 2013/4/6 11:48:44 编号:57413
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2004-9-29  下午 04:19:38
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v6.0.2900.5512
本机内存:1021.98 MB - 可用内存:741.14 MB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\conime.exe
C:\WINDOWS\explorer.exe
D:\qqkav.exe        
C:\WINDOWS\explorer.exe

未知IE加载项:
{1DABF8D5-8430-4985-9B7F-A30E53D709B3}
|InstallHelper Class|C:\WINDOWS\system32\MMInstaller.dll
{444785F1-DE89-4295-863A-D46C3A781394}
|UnityWebPlayer Control|C:\Documents and Settings\Administrator\Local Settings\Application Data\Unity\WebPlayer\loader\UnityWebPluginAX.ocx
{452ADB5B-00BE-469D-A65F-3046146B2ED5}
{452ADB5B-00BE-469D-A65F-3046146B2ED5}
{467B32FF-C688-40FF-95FC-C7C61247B0AA}
{467B32FF-C688-40FF-95FC-C7C61247B0AA}
{4C66CCCB-79A5-42BD-86A0-ED902282B4AB}
{4C66CCCB-79A5-42BD-86A0-ED902282B4AB}
{5EF7B131-C278-4034-BC88-2CE28B128681}
|QQLiveOcx Class|D:\QQLive\LiveOcx\LiveOcx.dll
{8C891026-0BE9-434E-B807-118E6E5EA3B6}
|SetupCtrl Class|C:\WINDOWS\Downloaded Program Files\4669625\BaiduSetupAx_1.dll
{91F15A8C-5B15-164D-E533-3ECC1BD2F93C}
{91F15A8C-5B15-164D-E533-3ECC1BD2F93C}
{95B3F550-91C4-4627-BCC4-521288C52977}
{95B3F550-91C4-4627-BCC4-521288C52977}
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62}
|QQLive Class|D:\QQLive\LiveAPI.dll
{DAEB1ABC-48F1-4bb8-82E8-0DAC468F35A4}
|InstallHelper Class|C:\Program Files\Tencent\QQmusic\QQMusicInstall\QQMusicMMInstaller.dll
{DE0CDDB6-1D10-4224-A998-A4BFBA97840C}
|pageman Class|C:\Program Files\baidu\BaiduBrowser\plugins\npagex.dll
{EF0D1A14-1033-41A2-A589-240C01EDC078}
|PPLive Lite Class|C:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll
{F7E55BDF-9528-46ba-B550-777859627591}
|QQLiveOcxShell Class|D:\QQLive\LiveOcx\LiveOcx.dll
未知BHO插件:
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
Kingsoft Antivirus WebShield Service|Kingsoft Antivirus WebShield Service|D:\webshield\KSWebShield.exe|


发表于 2013/4/5 2:57:49 编号:57412
问题描述:病毒
名称:         Shockwave Flash Object
发行者:        Adobe Systems Incorporated
类型:         ActiveX 控件
版本:         11.1.102.63
文件日期:       
上次访问日期:     2013年4月5日,2:56
类 ID:       {D27CDB6E-AE6D-11CF-96B8-444553540000}
使用计数:       122
阻止次数:       0
文件:         Flash11g.ocx
文件夹:        C:\WINDOWS\system32\Macromed\Flash


发表于 2013/4/4 15:25:22 编号:57411
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-04-04  15:26:18
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v6.0.2900.5512
本机内存:1.99 GB - 可用内存:1.14 GB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
QQPMDaemon|"C:\Program Files\Tencent\QQPCMgr\Plugins\QQPCB1AndroidJmp\QQPMDaemon.exe"|
kxesc |"c:\program files\kingsoft\kingsoft antivirus\kxetray.exe" -autorun|
KSafeTray |"c:\program files\ksafe\KSafeTray.exe" -autorun|
!!QQKav |D:\qqkav.exe|
ACSW14ZA|"C:\Program Files\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe" /pid ACSW14ZA|
 QQPCTray |"C:\Program Files\Tencent\QQPCMgr\7.5.8436.208\QQPCTray.exe"/regrun|
KPhoneTray|"C:\program files\shoujikong\kphonetray.exe" -autorun|

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tencent\QQPCMgr\7.5.8436.208\QQPCRTP.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\kingsoft\kingsoft antivirus\kxescore.exe
c:\program files\ksafe\KSafeSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\MyDrivers\DriverGenius2012\DgService.exe
C:\Program Files\FPSensor\bin\iZHost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Tencent\QQPCMgr\7.5.8436.208\QQPCTray.exe
C:\program files\kingsoft\kingsoft antivirus\kxetray.exe
C:\program files\ksafe\KSafeTray.exe
C:\Program Files\ACD Systems\ACDSee\14.0\ACDSeeInTouch2.exe
C:\program files\shoujikong\kphonetray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Tencent\QQPCMgr\Plugins\QQPCB1AndroidJmp\QQPMDaemon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\duowan\yy-5\YY.exe
C:\Program Files\duowan\yy-5\YY.exe
C:\Program Files\duowan\yy-5\5.8.0.2\yyplatform.exe
C:\Program Files\duowan\yy-5\5.8.0.2\yyexternal.exe
C:\Program Files\shiqiang\wnwg\wnwb.exe
D:\Program Files\Tencent\QQ\QQProtect\Bin\QQProtect.exe
D:\Program Files\Tencent\QQ\bin\QQ.exe
D:\Program Files\Tencent\QQ\bin\TXPlatform.exe
C:\program files\ksafe\pushapp\adb.exe
D:\qqkav.exe        
C:\WINDOWS\system32\conime.exe

未知IE加载项:
{00000ADA-7E0D-47C1-986C-F017D09C4304}
{00000ADA-7E0D-47C1-986C-F017D09C4304}
{05F5F404-7C24-4B39-B5CC-340CEDEB9C0D}
|PhotoDrawEx Class|C:\Program Files\Tencent\Qzone\QQPhotoDrawEx.dll
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}
{0C27ADC4-E826-4620-A3A7-990D7E05545F}
|迅雷FLV视频嗅探及下载支持代理|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll
{0EA37B17-6B8B-4085-8257-F3A4AA69C27A}
|迅雷FLV视频嗅探及下载支持|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll
{14C1D00E-0B92-4379-880B-444FA2D740DD}
{14C1D00E-0B92-4379-880B-444FA2D740DD}
{162AF25B-5A2A-448E-A842-194653EF3E05}
{162AF25B-5A2A-448E-A842-194653EF3E05}
{1663ED61-23EB-11D2-B92F-008048FDD814}
|MeadCo ScriptX|C:\WINDOWS\system32\MCScripX.dll
{1663ED6A-23EB-11D2-B92F-008048FDD814}
|MeadCo Extended HTML Printing|C:\WINDOWS\system32\MCPrintXU.dll
{1DABF8D5-8430-4985-9B7F-A30E53D709B3}
|InstallHelper Class|C:\WINDOWS\system32\MMInstaller.dll
{24C1D00E-0B92-4379-880B-444FA2D740DD}
{24C1D00E-0B92-4379-880B-444FA2D740DD}
{250587D2-6704-4479-8718-3C7E163B4261}
{250587D2-6704-4479-8718-3C7E163B4261}
{29B6CFD5-0064-411A-8C42-9890C83F9921}
|Basic Class|C:\Program Files\Tencent\QQPCMgr\7.5.8436.208\npQMExtensionsIE.dll
{2A39CB63-CC0C-4EDD-82D0-4559C5085301}
{2A39CB63-CC0C-4EDD-82D0-4559C5085301}
{3C284567-929B-4ED8-A155-A42D00746B25}
{3C284567-929B-4ED8-A155-A42D00746B25}
{50F4150A-48B2-417A-BE4C-C83F580FB904}
|AgentForAndroid Class|C:\Program Files\Common Files\Tencent\QQPhoneManager\1.8.101.2154\npQQPhoneManagerExt.dll
{5D578929-E74E-46A2-A810-4F33D011DC52}
{5D578929-E74E-46A2-A810-4F33D011DC52}
{5FFF24BC-DC02-4808-B4E0-A8E2C93FE407}
|迅雷发行IE支持|C:\Program Files\Thunder Network\Thunder\BHO\xlfxctrl1.0.1.64.dll
{61396D82-85A1-4103-913F-A42E137A21A6}
|wStamp Class|C:\WINDOWS\system32\wStampCom.dll
{695891DE-E87C-4942-9628-7217D3EFBD2D}
{695891DE-E87C-4942-9628-7217D3EFBD2D}
{6EE9CD3E-A386-4DAE-9737-A759DBF927AE}
|Access UserInfo by Script|C:\Program Files\Common Files\Thunder Network\UserAgent\UserAgent1.0.2.28.dll
{721D2B43-AACC-B127-C23E-ADCE4450EEA0}
{721D2B43-AACC-B127-C23E-ADCE4450EEA0}
{820390E5-1C07-483D-AEED-6A0EDF640AA2}
|BJCAWebSign Control|C:\WINDOWS\system32\BJCAWE~1.OCX
{82404416-4C60-47F8-BA06-90BA7261C3AE}
|yy_checker|C:\Program Files\Common Files\duowan\yy4.0\YYSSO\1.0.0.3\npChecker.dll
{95B3F550-91C4-4627-BCC4-521288C52977}
{95B3F550-91C4-4627-BCC4-521288C52977}
{9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9C}
{9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9C}
{A5A85624-037B-446E-9090-EEA49DFD4300}
|ClientNSP Class|C:\Program Files\Sangfor\SSL\ClientComponent2\SangforNsp.dll
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F9}
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F9}
{BC5E4F38-63EF-4668-8499-F3DC78AF4EDC}
{BC5E4F38-63EF-4668-8499-F3DC78AF4EDC}
{C18CB140-0BBB-11D4-8FE8-0088CC102437}
{C18CB140-0BBB-11D4-8FE8-0088CC102437}
{C5468121-1BEF-4499-9813-98BB12072A8D}
|HashCom Class|C:\WINDOWS\system32\SECSignSrc.dll
{D257CF85-8E97-4C9B-8407-459B28005111}
|CSClientManager Class|C:\Program Files\Sangfor\SSL\ClientComponent2\CSClientManagerPrj.dll
{D382D2C6-F022-4C9B-B33B-A8B0055FE72D}
|iTrusSignForm Class|C:\WINDOWS\system32\SECSignForm.dll
{DD5BF6D1-6663-47E0-9DFA-5C343CAF178E}
|xoliimpl Class|C:\WINDOWS\xinstaller.dll
{E39B98A8-34A7-4D92-A979-920C48815301}
{E39B98A8-34A7-4D92-A979-920C48815301}
{E3C8402B-9629-4498-AF09-5F94804669D1}
|BJCAQRImgCtrl Control|C:\WINDOWS\system32\BJCAQR~1.OCX
{E6316651-CC1B-4FB9-A985-4796DC6B5301}
{E6316651-CC1B-4FB9-A985-4796DC6B5301}
{EF0D1A14-1033-41A2-A589-240C01EDC078}
|PPLive Lite Class|C:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll
{F4BA5508-8AB7-45C1-8D0A-A1237AD82399}
|DropFile Class|C:\WINDOWS\system32\TXGYMailActiveX.dll
{FB5F1910-F110-11D2-BB9E-00C04F795683}
{FB5F1910-F110-11D2-BB9E-00C04F795683}
{FFD2FD1F-C991-4A2F-8557-CDB11E275000}
{FFD2FD1F-C991-4A2F-8557-CDB11E275000}
未知BHO插件:
{0EA37B17-6B8B-4085-8257-F3A4AA69C27A}
|迅雷FLV视频嗅探及下载支持|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
DriverGenius PNP Service|DGPNPSEV|C:\Program Files\MyDrivers\DriverGenius2012\DgService.exe|
iZHost|iZHost|"C:\Program Files\FPSensor\bin\iZHost.exe"|
Kingsoft Core Service|kxescore|"c:\program files\kingsoft\kingsoft antivirus\kxescore.exe" /service kxescore|
KSafe service |KSafeSvc|"c:\program files\ksafe\KSafeSvc.exe" -svc|
QQPCMgr RTP Service |QQPCRTP |C:\Program Files\Tencent\QQPCMgr\7.5.8436.208\QQPCRtp.exe -r|
User Authentication Manager|DpHost|C:\Program Files\FPSensor\bin\DpHost.exe|


发表于 2013/4/4 2:02:07 编号:57410
问题描述:病毒
怎么下载不了 

发表于 2013/4/3 12:38:04 编号:57409
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-4-3  12:40:06
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v8.0.6001.18702
本机内存:1.90 GB - 可用内存:1.34 GB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
!!QQKav |C:\Documents and Settings\Administrator\桌面\qqkav.exe|

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Array Networks\Common\8,4,0,361\arr_isrv.exe
C:\Program Files\Common Files\alipay\Updater\AlipayUpdater.exe
C:\Program Files\Array Networks\Array SSL VPN\8,4,0,361\arr_srvs.exe
C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
C:\WINDOWS\system32\KaraokeSer.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WdfMgr.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\WINDOWS\system32\CNAB6RPK.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\IPMsg\ipmsg.exe
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
C:\Program Files\SogouInput\6.5.0.9043\PinyinUp.exe
C:\Program Files\SogouInput\6.5.0.9043\SGTool.exe
C:\Documents and Settings\Administrator\桌面\qqkav.exe
C:\Documents and Settings\Administrator\桌面\qqkav.exe
C:\Documents and Settings\Administrator\桌面\qqkav.exe

未知IE加载项:
{00000000-0592-4356-9CF7-1D8C2B3343C0}
{00000000-0592-4356-9CF7-1D8C2B3343C0}
{00000000-12C9-4305-82F9-43058F20E8D2}
{00000000-12C9-4305-82F9-43058F20E8D2}
{00000ADA-7E0D-47C1-986C-F017D09C4304}
|VideoUrlSniffer Class|C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\VideoUrlSniffer.2.2.0.131.(24).dll
{05F5F404-7C24-4B39-B5CC-340CEDEB9C0D}
|PhotoDrawEx Class|f:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\bin\QQPhotoDrawEx\QQPhotoDrawEx.dll
{0C27ADC4-E826-4620-A3A7-990D7E05545F}
|迅雷FLV视频嗅探及下载支持代理|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
{0C7C23EE-A848-485B-873C-0ED954731014}
{0C7C23EE-A848-485B-873C-0ED954731014}
{0EA37B17-6B8B-4085-8257-F3A4AA69C27A}
|迅雷FLV视频嗅探及下载支持|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
{0FF18D4E-50CD-43D8-856E-37CD924FF4CF}
|worker Class|C:\WINDOWS\system32\install_service_v4.dll
{11F2A418-94B2-4e16-9B0C-B00C0435F903}
{11F2A418-94B2-4e16-9B0C-B00C0435F903}
{1DABF8D5-8430-4985-9B7F-A30E53D709B3}
|InstallHelper Class|C:\WINDOWS\system32\MMInstaller.dll
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{23752AA7-CAD7-40C2-99EE-7A9CD3C20C6D}
|QQCPHelper.CPAdder|F:\PROGRA~1\Tencent\QQ\bin\CPHelper.dll
{2DE6841F-D106-40C5-B79D-E4168224179D}
|Attachment Class|C:\Program Files\GDCN\Office\3.0\bin\AttachmentCtrl.dll
{38481807-CA0E-42D2-BF39-B33AF135CC4D}
|IETag Factory|C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL
{3AA9CF07-DF20-48FF-98BE-DED276E40146}
|GDGetTokenInfo Class|C:\WINDOWS\System32\GDREAD~1.DLL
{3C284567-929B-4ED8-A155-A42D00746B25}
{3C284567-929B-4ED8-A155-A42D00746B25}
{4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2}
|Microsoft RDP Client Control (redist)|C:\WINDOWS\system32\mstscax.dll
{4EDCB26C-D24C-4e72-AF07-B576699AC0DE}
|Microsoft RDP Client Control (redist)|C:\WINDOWS\system32\mstscax.dll
{53AC8551-0DE0-4606-8A1E-A51AF20ADD60}
{53AC8551-0DE0-4606-8A1E-A51AF20ADD60}
{5852F5ED-8BF4-11D4-A245-0080C6F74284}
|isInstalled Class|C:\Program Files\Java\jre6\bin\wsdetect.dll
{5FFF24BC-DC02-4808-B4E0-A8E2C93FE407}
|迅雷发行IE支持|C:\Program Files\Thunder Network\Thunder\BHO\xlfxctrl1.0.1.64.dll
{6B232760-90F1-41c3-9902-C8552C1D8A72}
{6B232760-90F1-41c3-9902-C8552C1D8A72}
{6EE9CD3E-A386-4DAE-9737-A759DBF927AE}
|Access UserInfo by Script|C:\Program Files\Thunder Network\Thunder\BHO\UserAgent1.0.2.10.dll
{72C24DD5-D70A-438B-8A42-98424B88AFB8}
|Windows Script Host Shell Object|C:\WINDOWS\system32\wshom.ocx
{7390f3d8-0439-4c05-91e3-cf5cb290c3d0}
|Microsoft RDP Client Control (redist)|C:\WINDOWS\system32\mstscax.dll
{7CCE07A5-A590-4554-B5C3-082840D7012E}
|GDGetVer Class|C:\WINDOWS\DOWNLO~1\ICBC_G~1.DLL
{84894428-B1F9-4C88-8A45-D6B8524E53B3}
|AxAssistComm Class|C:\Program Files\ICBCEbankTools\ICBCSetupIntegration\IcbcAssistComm.dll
{8B054DFE-79A3-4A6A-9F46-CD2A2F601129}
|Uploader Class|C:\WINDOWS\system32\TXGYMailActiveX.dll
{8B23EA28-723C-402F-92C4-59BE0E063499}
|iWebOffice2006 Control|C:\WINDOWS\DOWNLO~1\ioDoc.ocx
{9059f30f-4eb1-4bd2-9fdc-36f43a218f4a}
|Microsoft RDP Client Control (redist)|C:\WINDOWS\system32\mstscax.dll
{94C3E4BB-A261-4A83-B437-EA6F7A28CA68}
{94C3E4BB-A261-4A83-B437-EA6F7A28CA68}
{96CD6DA7-17F2-4576-82B0-BE4526FB7D6B}
|VASensor Class|C:\Program Files\Common Files\Thunder Network\KanKan\kkva.1.0.0.11.(24).dll
{9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9C}
|VersionDetector Class|C:\Program Files\Common Files\Thunder Network\KanKan\kkvd.1.0.0.2.(785).dll
{A8502600-B272-4F68-A67B-A0305D46D297}
|QvodExtend
{A9332148-C691-4B9D-91FC-B9C461DBE9DD}
|APlayer3 Control|C:\Documents and Settings\All Users\Application Data\Thunder Network\APlayer\APlayer_3.1.0.613.dll
{AA58ED58-01DD-4D91-8333-CF10577473F7}
{AA58ED58-01DD-4D91-8333-CF10577473F7}
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F9}
|LiveDapCtrl Class|C:\Program Files\Common Files\Thunder Network\KanKan\LiveDapCtrl.1.0.0.10.(24).dll
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
{B070D3E3-FEC0-47D9-8E8A-99D4EEB3D3B0}
{B070D3E3-FEC0-47D9-8E8A-99D4EEB3D3B0}
{B6648EB8-2460-484F-9255-9654454C4C70}
|ArrVPNAX Control|C:\WINDOWS\system32\arr_x.ocx
{BD96C556-65A3-11D0-983A-00C04FC29E36}
|RDS.DataSpace|C:\Program Files\Common Files\System\msadc\msadco.dll
{BDEACC50-F56D-4D60-860F-CF6ED1766D65}
|FTNUpload Class|C:\PROGRA~1\COMMON~1\Tencent\TXFTN\TXFTNA~1.DLL
{BFB79EE1-04AE-4D4A-B85E-27EE5F30C095}
|ScreenCapture Class|C:\WINDOWS\system32\TXGYMailActiveX.dll
{C702CF75-561E-4777-8E59-AC0AD519CD9D}
|Document Class|C:\PROGRA~1\GDCN\Office\3.0\bin\GFile.dll
{C728DAB8-FDF5-4CD7-89DD-879D25794C77}
|KooPlayer Control
{CA8A9780-280D-11CF-A24D-444553540000}
|Adobe Acrobat 7.0 Browser Document|F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroPDF.dll
{CA92B524-BC8A-4610-BD2C-6BD3E28155D0}
{CA92B524-BC8A-4610-BD2C-6BD3E28155D0}
{CD108273-D434-43E6-AA90-1469F97EB398}
|QQPlayerCtrl Class|F:\Program Files\Tencent\QQMusic\QzoneMusic\QzoneMusic.dll
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62}
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62}
{DD5BF6D1-6663-47E0-9DFA-5C343CAF178E}
|xoliimpl Class|C:\WINDOWS\xinstaller.dll
{DFEAF541-F3E1-4C24-ACAC-99C30715084A}
|Microsoft Silverlight|C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
{E577393C-3468-4911-9DA0-484C3F4C47D7}
||C:\Program Files\Common Files\Thunder Network\APlayer\Codecs\xlvsource.ax
{E758BC30-C8C3-4379-B27B-B50E146460A9}
{E758BC30-C8C3-4379-B27B-B50E146460A9}
{EAAED308-7322-4B9B-965E-171933ADD473}
|SSOForPTLogin2 Class|C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.89\Bin\npSSOAxCtrlForPTLogin.dll
{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4}
|TimwpDll.TimwpCheck|F:\PROGRA~1\Tencent\QQ\bin\Timwp.dll
{FB5DA724-162B-11D3-8B9B-AA70B4B0B524}
{FB5DA724-162B-11D3-8B9B-AA70B4B0B524}
{FB5DA724-162B-11D3-8B9B-AA70B4B0B525}
{FB5DA724-162B-11D3-8B9B-AA70B4B0B525}
{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392}
|webmod Class|C:\WINDOWS\system32\aliedit\2.6.0.1\alidcp.dll
未知BHO插件:
{00000ADA-7E0D-47C1-986C-F017D09C4304}
|VideoUrlSniffer Class|C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\VideoUrlSniffer.2.2.0.131.(24).dll
{0EA37B17-6B8B-4085-8257-F3A4AA69C27A}
|迅雷FLV视频嗅探及下载支持|C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
Alipay update service|AlipayUpdaterSvc|C:\Program Files\Common Files\alipay\Updater\AlipayUpdater.exe|
Array SSL VPN Service 8,4,0,361|ArraySSL_VPN_Service8.4.0.361|C:\Program Files\Array Networks\Array SSL VPN\8,4,0,361\arr_srvs.exe|
Array Utility Service 8,4,0,361|Array_Utility_Service8.4.0.361|C:\Program Files\Array Networks\Common\8,4,0,361\arr_isrv.exe|
Google Updater Service|gusvc |"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"|
ICBC Daemon Service |ICBC Daemon Service |C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe|
Intel(R) Capability Licensing Service Interface|Intel(R) Capability Licensing Service Interface|"C:\Program Files\Intel\iCLS Client\HeciServer.exe"|
Intel(R) Dynamic Application Loader Host Interface Service|jhi_service |C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe|
Intel(R) Management and Security Application Local Management Service|LMS |C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe|
Intel(R) Management and Security Application User Notification Service|UNS |"C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"|
Uninterruptible Power Supply|UPS |C:\WINDOWS\System32\ups.exe|
VIA Karaoke digital mixer Service|KaraokeService|C:\WINDOWS\system32\KaraokeSer.exe|
主动防御|ZhuDongFangYu |"F:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"|


发表于 2013/4/3 8:48:21 编号:57408
问题描述:不清楚
BocKeymon.exe

发表于 2013/4/3 0:04:49 编号:57407
问题描述:病毒
QQKav系统诊断报告!--2012.7.1
生成时间:2013-4-3  0:08:59
操作系统:Windows XP 5.1_2600.2:Service Pack 3
IE版本:Internet Explorer v6.0.2900.5512
本机内存:2.00 GB - 可用内存:1.60 GB
==================================================
系统启动项:
ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe|
360sd |"C:\Program Files\360\360sd\360sd.exe" /autorun|
QvodPlayer|C:\Program Files\QvodPlayer\QvodTerminal.exe|
RTHDCPL |RTHDCPL.EXE |

系统进程列表:
[System Process]    
System              
\SystemRoot\System32\smss.exe
\??\C:\WINDOWS\system32\csrss.exe
\??\C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\360\360safe\deepscan\ZhuDongFangYu.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\360\360sd\360sd.exe
C:\Program Files\QvodPlayer\QvodTerminal.exe
C:\Program Files\360\360safe\safemon\360tray.exe
C:\Program Files\360\360sd\360rp.exe
C:\Downloads\qqkav.exe
C:\WINDOWS\explorer.exe

未知IE加载项:
未知BHO插件:
未知系统Hooks插件:
未知SSODL插件:
未知系统服务:
Adobe Flash Player Update Service|AdobeFlashPlayerUpdateSvc|C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe|
DriverGenius PNP Service|DGPNPSEV|C:\Program Files\MyDrivers\DriverGenius2012\DgService.exe|
NVIDIA Driver Helper Service|NVSvc |C:\WINDOWS\system32\nvsvc32.exe|
NVIDIA Update Service Daemon|nvUpdatusService|"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"|


 总共有57739篇日志,共5774页,第143  首页 上一页 下一页 尾页